[jboss-dev-forums] [Design of Security on JBoss] - Changes to Realm Interface sought
anil.saldhana@jboss.com
do-not-reply at jboss.com
Thu Aug 3 11:21:20 EDT 2006
Remy/Mladen, I propose the following method addition to the Realm interface for Tomcat 6. This would take care of the needs for header based authentication (which may include some form of SSO/Identity Management usecases) and JSR-196 (Java Authentication Container SPI) needs.
| public Principal authenticate(Request request, Response response,
| LoginConfig loginConfig) throws Exception;
|
The current limitation with the Realm interface is the loss of the request object during authentication.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3962889#3962889
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3962889
More information about the jboss-dev-forums
mailing list